CVE-2021-29723

IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:ibm:sterling_external_authentication_server:2.4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_external_authentication_server:6.0.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_external_authentication_server:6.0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_secure_proxy:3.4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_secure_proxy:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_secure_proxy:6.0.2:*:*:*:*:*:*:*
OR cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:linux_on_ibm_z:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*

History

14 Feb 2023, 15:51

Type Values Removed Values Added
CPE cpe:2.3:o:ibm:linux_on_zseries:-:*:*:*:*:*:*:* cpe:2.3:o:ibm:linux_on_ibm_z:-:*:*:*:*:*:*:*
First Time Ibm linux On Ibm Z

02 Sep 2021, 15:54

Type Values Removed Values Added
CWE CWE-327
CPE cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_external_authentication_server:2.4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
cpe:2.3:a:ibm:sterling_secure_proxy:3.4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:linux_on_zseries:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_secure_proxy:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_external_authentication_server:6.0.1.0:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_external_authentication_server:6.0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_secure_proxy:6.0.2:*:*:*:*:*:*:*
References (CONFIRM) https://www.ibm.com/support/pages/node/6484685 - (CONFIRM) https://www.ibm.com/support/pages/node/6484685 - Patch, Vendor Advisory
References (CONFIRM) https://www.ibm.com/support/pages/node/6484681 - (CONFIRM) https://www.ibm.com/support/pages/node/6484681 - Patch, Vendor Advisory
References (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/201100 - (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/201100 - VDB Entry, Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 5.0
v3 : 7.5

30 Aug 2021, 18:38

Type Values Removed Values Added
Summary IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100. IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100.

30 Aug 2021, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-08-30 17:15

Updated : 2023-12-10 13:55


NVD link : CVE-2021-29723

Mitre link : CVE-2021-29723

CVE.ORG link : CVE-2021-29723


JSON object : View

Products Affected

ibm

  • linux_on_ibm_z
  • sterling_external_authentication_server
  • aix
  • sterling_secure_proxy

oracle

  • solaris

microsoft

  • windows

hp

  • hp-ux

linux

  • linux_kernel
CWE
CWE-327

Use of a Broken or Risky Cryptographic Algorithm